IDG News Service - HSBC Bank says a bug in its imaging software inadvertently exposed sensitive data about some of its customers going through bankruptcy proceedings.
In notification letters made public Thursday, the bank said it had redacted sensitive information in Chapter 13 bankruptcy proof-of-claim forms that were filed electronically, but that the information turned out to be viewable "as a result of the deficiency in the software used to save imaged documents."
An HSBC spokeswoman declined to elaborate on the cause of the problem, but said "a limited number of customers" were affected. HSBC has "no reason to believe customers' personal information may have been compromised," she added via e-mail. The company sent letters to affected customers in October and is offering them one year of free credit monitoring.
Some customers of the following HSBC companies are affected: HSBC Taxpayer Financial Services, Beneficial New Hampshire and Household Finance Corporation.
According to documents filed Thursday with the New Hampshire Attorney General's office, HSBC failed to completely redact information on forms that were filed between May 1, 2007, and Oct. 17, 2008. HSBC said it learned of the problem on July 9, 2009.
The data disclosed may have covered HSBC credit card, line-of-credit or mortgage information, the company said.
Legal documents are increasingly being filed online, causing some problems as company employees get used to the new formats. Information on paper copies can be redacted with a marker pen, but electronic redaction, if not done properly, can be reversed with a simple cut-and-paste.
Earlier this year, for example, the Associated Press was able to read redacted court testimony that showed Facebook's estimate of its own market value. The AP got its scoop by cutting and pasting the blacked-out sections of a court transcript.
The problem is large enough that two months ago the U.S. District Court for the District of New Jersey sent out guidelines explaining how to properly redact information.
"Electronically filing PDF'd documents is a relatively new process for lawyers," many of whom have only recently started using desktop computers, said Christina Frangiosa, counsel with the law firm Panitch Schwarze Belisario & Nadel.
- Radicati: Cloud Business Email - Market Quadrant 2013 Google was named the top cloud business email provider in a recent report by research firm Radicati. Out of 14 key players, Google...
- Tablets in the Enterprise: A Checklist for Successful Deployment How can you enterprise manage and secure tablets in order to protect corporate data while providing access to the information and applications employees...
- Enterprise Mobility: A Checklist for Secure Containerization The advantages and disadvantages of the multiple approaches to containerization. Learn More>>
- Enterprise File Sync & Share Checklist File sync and share has changed the way people work and collaborate in today's tech-savvy world. Gone are the email roadblocks, clunky FTP...
- Live Webcast LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy... All Security White Papers | Webcasts